Problem with outgoing HTTP connection
Posted: Thu May 15, 2008 5:38 amHi guys,
I'm using the latest grsecurity patches on a stock 2.6.24-6 kernel, together with Advanced Policy Firewall and a patched iptables.
When using the grsecurity kernel, I can't seem to make any outgoing http connections. DNS resolves fine and running a netstat I see the connection stays in SYN_SENT mode.
If I revert back to the vanilla kernel or flush iptables, the connection is fine.
Strange thing is I don't have any egress filtering enabled and I can SSH to the box fine. Maybe it's the return high numbered port connection, but it has to be something to do with the kernel configuration.. I used High security settings b.t.w?
Any help greatly appreciated!
Joel
I'm using the latest grsecurity patches on a stock 2.6.24-6 kernel, together with Advanced Policy Firewall and a patched iptables.
When using the grsecurity kernel, I can't seem to make any outgoing http connections. DNS resolves fine and running a netstat I see the connection stays in SYN_SENT mode.
If I revert back to the vanilla kernel or flush iptables, the connection is fine.
Strange thing is I don't have any egress filtering enabled and I can SSH to the box fine. Maybe it's the return high numbered port connection, but it has to be something to do with the kernel configuration.. I used High security settings b.t.w?
Any help greatly appreciated!
Joel